From 841e6241273ea9d35b53e9afc4ca3c29f782ac12 Mon Sep 17 00:00:00 2001
From: David Landry <david@dmwl.net>
Date: Mon, 3 Mar 2025 12:53:11 -0500
Subject: [PATCH] chore(work): test cognito in crossplane

---
 bootstrap/crossplane/helm-values.yaml           |  1 +
 .../crossplane/providerconfig.cognito.yaml      | 17 +++++++++++++++++
 2 files changed, 18 insertions(+)
 create mode 100644 bootstrap/crossplane/providerconfig.cognito.yaml

diff --git a/bootstrap/crossplane/helm-values.yaml b/bootstrap/crossplane/helm-values.yaml
index fc1f679..409efca 100644
--- a/bootstrap/crossplane/helm-values.yaml
+++ b/bootstrap/crossplane/helm-values.yaml
@@ -56,6 +56,7 @@ provider:
   # -- A list of Provider packages to install.
   packages:
     # - ghcr.io/crossplane-contrib/provider-aws-iam:v1.20.1
+    - ghcr.io/crossplane-contrib/provider-aws-cognitoidp:v1.20.1
     - ghcr.io/crossplane-contrib/provider-aws-route53:v1.20.1
     - ghcr.io/crossplane-contrib/provider-aws-s3:v1.20.1
 
diff --git a/bootstrap/crossplane/providerconfig.cognito.yaml b/bootstrap/crossplane/providerconfig.cognito.yaml
new file mode 100644
index 0000000..719641f
--- /dev/null
+++ b/bootstrap/crossplane/providerconfig.cognito.yaml
@@ -0,0 +1,17 @@
+apiVersion: aws.upbound.io/v1beta1
+kind: ProviderConfig
+metadata:
+  name: cognito
+  annotations:
+    argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true
+spec:
+  assumeRoleChain:
+    - roleARN: "arn:aws:iam::000654387266:role/CrossplaneServiceRole"
+    - roleARN: "arn:aws:iam::000654387266:role/CognitoManagementRole"
+
+  credentials:
+    source: Secret
+    secretRef:
+      namespace: crossplane-system
+      name: aws-secret
+      key: creds